From owner-freebsd-stable Fri Mar 26 15:10: 9 1999 Delivered-To: freebsd-stable@freebsd.org Received: from wall.polstra.com (rtrwan160.accessone.com [206.213.115.74]) by hub.freebsd.org (Postfix) with ESMTP id 9575714F65 for ; Fri, 26 Mar 1999 15:10:07 -0800 (PST) (envelope-from jdp@polstra.com) Received: from vashon.polstra.com (vashon.polstra.com [206.213.73.13]) by wall.polstra.com (8.9.1/8.9.1) with ESMTP id PAA10784; Fri, 26 Mar 1999 15:09:47 -0800 (PST) (envelope-from jdp@polstra.com) Received: (from jdp@localhost) by vashon.polstra.com (8.9.2/8.9.1) id PAA06681; Fri, 26 Mar 1999 15:09:47 -0800 (PST) (envelope-from jdp@polstra.com) Message-ID: X-Mailer: XFMail 1.3 [p0] on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: <000f01be77d1$135413e0$313d31cc@nuc.net> Date: Fri, 26 Mar 1999 15:09:46 -0800 (PST) Organization: Polstra & Co., Inc. From: John Polstra To: Jaime Bozza Subject: RE: PAM and Apache Cc: stable@FreeBSD.ORG Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Jaime Bozza wrote: >> In article <001301be77a7$904c0ee0$313d31cc@nuc.net>, >> Jaime Bozza wrote: >> > >> > Ok... I got that part working. :) But it still seems to not want to >> > validate a password. Is PAM subject to the same issues with getpwnam()? >> > (Unless your effective uid is 0, it returns '*' for a password) >> >> Yes. The PAM module calls getpwnam(). > > Looks like this won't be easy for me. :) Oh well. Well, I'm sure you understand the basic problem. The /etc/master.passwd file is readable only by root, so you have to be UID 0 to use it for authentication. About the only way for a non-root process to use it is to contact a daemon (running as root) that will read the file and perform the authentication. One possibility for you would be to run a RADIUS server (as root, of course) on the same machine, and use the pam_radius module to contact it. Most (if not all) of the RADIUS servers can be configured to authenticate via the passwd file. John --- John Polstra jdp@polstra.com John D. Polstra & Co., Inc. Seattle, Washington USA "Self-interest is the aphrodisiac of belief." -- James V. DeLong To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message